Report Overview

  1. Submitted URL

    cdn-112.anonfiles.com/N7ufD6O5va/65c72009-1672551941/L%C3%83%C2%A9a%20Mary%20[LEAKS].zip

  2. IP

    195.96.151.61

    ASN

    #41634 Svea Hosting AB

  3. Submitted

    2023-01-11 02:02:46

    Access

  4. Website Title

  5. Final URL

  6. Tags

  7. urlquery detections

    No alerts detected

Detections

  1. urlquery

    0

  2. Network Intrusion Detection

    6

  3. Threat Detection Systems

    4

Domain Summary

Domain / FQDNRankRegisteredFirst SeenLast Seen
r3.o.lencr.org3440001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.digicert.com860001-01-01T00:00:00Z0001-01-01T00:00:00Z
e1.o.lencr.org61590001-01-01T00:00:00Z0001-01-01T00:00:00Z
djv99sxoqpv11.cloudfront.netunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
ocsp.pki.goog1750001-01-01T00:00:00Z0001-01-01T00:00:00Z
baconaces.pro8351480001-01-01T00:00:00Z0001-01-01T00:00:00Z
yidbyhersle.xyzunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
img-getpocket.cdn.mozilla.net16310001-01-01T00:00:00Z0001-01-01T00:00:00Z
firefox.settings.services.mozilla.com8670001-01-01T00:00:00Z0001-01-01T00:00:00Z
contile.services.mozilla.com11140001-01-01T00:00:00Z0001-01-01T00:00:00Z
vjs.zencdn.net49680001-01-01T00:00:00Z0001-01-01T00:00:00Z
pogothere.xyzunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
www.facebook.com990001-01-01T00:00:00Z0001-01-01T00:00:00Z
push.services.mozilla.com21400001-01-01T00:00:00Z0001-01-01T00:00:00Z
accounts.google.com810001-01-01T00:00:00Z0001-01-01T00:00:00Z
cdn-112.anonfiles.comunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
content-signature-2.cdn.mozilla.net11520001-01-01T00:00:00Z0001-01-01T00:00:00Z
anonfiles.com1171610001-01-01T00:00:00Z0001-01-01T00:00:00Z
iokenattharmiin.com.uaunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z
eiorwithitofsti.com.uaunknown0001-01-01T00:00:00Z0001-01-01T00:00:00Z

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

SeveritySource IPDestination IPAlert
lowClient IPInternal IP
lowClient IPInternal IP
lowClient IPInternal IP
lowClient IPInternal IP
medium 52.20.131.174Client IP
medium 52.20.131.174Client IP

Threat Detection Systems

OpenPhish

No alerts detected


PhishTank

No alerts detected


Fortinet's Web Filter
SeverityIndicatorAlert
mediumdjv99sxoqpv11.cloudfront.net/LVTJzc3o2XR0VRSFbF05NZgVAQUNzWAAcFCUPJUVKNGc4PRtgWEVVDi9WTkNcOVMdFEdzVx0QR2QUEhcYaAZVBwo6WU4bAiRcAgoRIF0HVQ80Dx4cADxeHxJfZ3RGXUpwAENbDTxcFxwNJhdBQxQhF0FDS2UcQ1ZJFxdBQw08XEVHX2ZwVkFKLQRHVkkXF0-FDCCMXQDJLZQddQ1NwAEMUHzZZHFZIEwBDQkplA0NCX2cCFRoIMFQcC19ndEJDT3sCVQZHZAMalware
mediumdjv99sxoqpv11.cloudfront.net/kWDFMdDA7XiISDyxYKEkHawZ/RwB+Wz8bXigMBg4AIFoHMnkiYHo7VxEXOA5UZQFqGFE2VnFSVTZScUUWOVUuSQR+RC1JXTdLJRhcORR+MgV2AWlGAHBGJRpUN0Y/UQJoXzhRAmgAfFoAfQIOUQJoRiUaBmwUfzYVagE0QgR9Ag5RAmhDOlEDGQB8QR5oGG-lGAD9ULx9ffQMKRgBpAXxFAGkUfkRWMUMpEl8gFH4yAWgEYkQWLQx9Malware

mnemonic secure dns

No alerts detected


Quad9 DNS

No alerts detected


JavaScript (13)

HTTP Transactions (77)

URLIPResponseSize
cdn-112.anonfiles.com/N7ufD6O5va/65c72009-1672551941/L%C3%83%C2%A9a%20Mary%20[LEAKS].zip
195.96.151.61301 Moved Permanently162 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK939 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
cdn-112.anonfiles.com/N7ufD6O5va/65c72009-1672551941/L%C3%83%C2%A9a%20Mary%20[LEAKS].zip
195.96.151.61301 Moved Permanently0 B
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK5.3 kB
r3.o.lencr.org/
95.101.11.115200 OK503 B
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK12 B
anonfiles.com/N7ufD6O5va
45.154.253.151200 OK3.3 kB
anonfiles.com/css/anonfiles.css?1668606177
45.154.253.151200 OK25 kB
anonfiles.com/sw_anonfiles.js
45.154.253.151200 OK16 kB
anonfiles.com/js/app.js?1668606177
45.154.253.151200 OK58 kB
vjs.zencdn.net/7.3.0/video-js.min.css
151.101.66.217200 OK9.7 kB
anonfiles.com/img/flags/24/in.png
45.154.253.151200 OK593 B
anonfiles.com/static/logo.png
45.154.253.151200 OK18 kB
anonfiles.com/img/flags/24/ru.png
45.154.253.151200 OK403 B
vjs.zencdn.net/7.3.0/video.min.js
151.101.66.217200 OK132 kB
anonfiles.com/img/flags/24/dk.png
45.154.253.151200 OK537 B
anonfiles.com/img/flags/24/no.png
45.154.253.151200 OK611 B
anonfiles.com/img/flags/24/se.png
45.154.253.151200 OK581 B
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK329 B
anonfiles.com/img/flags/24/jp.png
45.154.253.151200 OK599 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
anonfiles.com/img/flags/24/pl.png
45.154.253.151200 OK347 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
djv99sxoqpv11.cloudfront.net/?xsvjd=737329
54.230.245.37200 OK69 kB
anonfiles.com/img/file/filetypes/ext/zip.png?1668603321
45.154.253.151200 OK874 B
anonfiles.com/img/flags/24/us.png
45.154.253.151200 OK656 B
ocsp.pki.goog/s/gts1p5/30tfd9a8gQQ
142.250.74.131200 OK472 B
baconaces.pro/?tag_id=737323&sub_id2=6cb1f80d-a027-4b0d-9589-587d59904df9&sw_url=https%3A%2F%2Fanonfiles.com%2Fsw_anonfiles.js&smf=1
52.20.131.174200 OK23 kB
push.services.mozilla.com/
52.42.234.253101 Switching Protocols0 B
iokenattharmiin.com.ua/UlVqNDIzNwlZDTNoCBJHIDlXEQAUcFhyVjgjUw1BKjobRERjZERXXj0gDlJAPTseGlw3IU8GdB4DPn5IMWYFBmoAZTxmYRQ3LAQHHA8NYnMDACROZRMUCXJxBwUgYWQZGy1XBgIHHlNlFwM8cFtrAj5ffDEaPHlWFBAOTmQqZTtmAAMAL1xRCzQrbmQQIgUCZQdhCHVbADYrU10AHCwEegQEUgR2KmEJdXYqMCJMeDQPWWZ1CgAaQ3MXGwhwZio2LExFHB8CUHADLTtcdGITLmcABzY7BWgYExJQcAMiWgxqFwMibAAIIjxfdBkZO2Z6BD4BbHRieCxwcREYMmV2GBkwZVY2BFt6RRMQJ2F6KA8wfHQIHC9DcBYEAUReE2Ukd2pgNilyYD0cJ3JjMRZbDVw2ECBwZmEmKWJjCB0wdRQ4JgVaQm8DXARTBx4kVQc4Yw
108.157.214.128200 OK1.2 kB
anonfiles.com/img/flags/24/de.png
45.154.253.151200 OK483 B
iokenattharmiin.com.ua/ZWhCMmoECiFfVQRVIBQfFwR/F1gjTXB0Dg8eewsZHQczQhxUWWxRBgodJlQYCgY2HAQAHGcALA4/BnQnASwDBTIMIRF2Ex0xCXcBLQk1aE9XLhBFKEBaAGUQXQoaWw0oKiUGKywuLXonCwMrayIKXxRKLz0nAwc/PzkEQy0jLXBkBCM7FGYwNgsXZz0qPhdHOTQ6ZwAoNytzeDIxDA54OA0LDWA4QFoAfw0zWgNlBiIpCnAtLzoyZyRVMWcALDA5CF0yHwAQcwcCKSR0BSQOE3slMDkIXTgMPSNwBxI9JEgzMwkld1o0DxALKwJdEHMHDSwNXi8hLxNwUjQ6d10tIkUudSshURd+ElwOJGMnLjolcBokMDp0KyIDF1QBNz8PZycVLS4KDSMgdksrMg8HawE0Pw5jElxOKEEFCxh/eBBVECl5LCwSEwQlAiE
108.157.214.128200 OK1.2 kB
eiorwithitofsti.com.ua/OFFyUTAXbhEiDWwFGhliQhdGEHhqYDAJZXUyOhB3XjYeK1N5MlQlWVxsRWIHC2NLd0BRNU9gFkslEyVFS2xDd1lWNx1sFk5sQ38DDH9BYB4KdwdsAR4lAjBXBWBUIURMPU9gBg9iRmECDWVAZQAA
188.114.96.1204 No Content0 B
iokenattharmiin.com.ua/utx?tid=737323&top=anonfiles.com&cb=sqklwPxWNdWr
108.157.214.128204 No Content0 B
eiorwithitofsti.com.ua/cFE3ZE5fblQXcyQ6UwwDHj0OAH89FGM8OgkEZiIBFRlTNw8bNhEQJxRsAFd5Q2IHQj4ZNQpVdlYiQwU6BSIKVWgZP1ELc1YnClVgQH8FSnxWJApVaAQhVgNzQXdHEDocbAZSeUNlB1Z7RGMDVns
188.114.96.1204 No Content0 B
anonfiles.com/img/flags/24/fr.png
45.154.253.151200 OK536 B
djv99sxoqpv11.cloudfront.net/LVTJzc3o2XR0VRSFbF05NZgVAQUNzWAAcFCUPJUVKNGc4PRtgWEVVDi9WTkNcOVMdFEdzVx0QR2QUEhcYaAZVBwo6WU4bAiRcAgoRIF0HVQ80Dx4cADxeHxJfZ3RGXUpwAENbDTxcFxwNJhdBQxQhF0FDS2UcQ1ZJFxdBQw08XEVHX2ZwVkFKLQRHVkkXF0-FDCCMXQDJLZQddQ1NwAEMUHzZZHFZIEwBDQkplA0NCX2cCFRoIMFQcC19ndEJDT3sCVQZHZA
54.230.245.37200 OK563 B
ocsp.pki.goog/s/gts1p5/30tfd9a8gQQ
142.250.74.131200 OK472 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
anonfiles.com/img/flags/24/br.png
45.154.253.151200 OK1.1 kB
djv99sxoqpv11.cloudfront.net/kWDFMdDA7XiISDyxYKEkHawZ/RwB+Wz8bXigMBg4AIFoHMnkiYHo7VxEXOA5UZQFqGFE2VnFSVTZScUUWOVUuSQR+RC1JXTdLJRhcORR+MgV2AWlGAHBGJRpUN0Y/UQJoXzhRAmgAfFoAfQIOUQJoRiUaBmwUfzYVagE0QgR9Ag5RAmhDOlEDGQB8QR5oGG-lGAD9ULx9ffQMKRgBpAXxFAGkUfkRWMUMpEl8gFH4yAWgEYkQWLQx9
54.230.245.37200 OK268 B
anonfiles.com/img/flags/24/es.png
45.154.253.151200 OK666 B
yidbyhersle.xyz/
52.20.131.174200 OK0 B
anonfiles.com/img/flags/24/fi.png
45.154.253.151200 OK456 B
anonfiles.com/img/flags/24/kr.png
45.154.253.151200 OK988 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK471 B
e1.o.lencr.org/
23.33.119.27200 OK346 B
e1.o.lencr.org/
23.33.119.27200 OK346 B
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
142.250.74.109302 Found398 B
iokenattharmiin.com.ua/utx?cb=dtFkNJHgVMkR&top=anonfiles.com&tid=737329
108.157.214.128204 No Content0 B
anonfiles.com/sw_anonfiles.js?dmhtTVItSlp%2BZUVaXm9%2BVEpBb2QVClwrakYMQCxiRF9AeTBGDEB0Z05RQHhqQQxYdGtGXAkra1RETyg0FQ4PeWcQRQ8vZRJFWXswQ0UMdDBERVV4axNRXXtrEg1efXBaSh46cFpKFCQ2FBEFKCAFBAhjKg8ST2FwR1hDeHBaDgwhIRNECyw%2BBQ1BKzMaGwgQ
45.154.253.151200 OK16 kB
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
142.250.74.109302 Found397 B
ocsp.pki.goog/gts1c3
142.250.74.131200 OK472 B
ocsp.digicert.com/
93.184.220.29200 OK471 B
e1.o.lencr.org/
23.33.119.27200 OK346 B
anonfiles.com/img/favicon/favicon-32x32-anonfiles.png?1668603321
45.154.253.151200 OK1.3 kB
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
r3.o.lencr.org/
95.101.11.115200 OK503 B
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F94fd75b6-8b38-4585-a6d9-7fe9c9b69e86.jpeg
34.120.237.76200 OK7.4 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8726105-cc11-4ded-a83e-841fadde759e.jpeg
34.120.237.76200 OK9.9 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15770463-febf-46fb-8a4d-1a4f297b5a7b.jpeg
34.120.237.76200 OK4.1 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6836f9-47c0-4072-8841-9838455af78e.jpeg
34.120.237.76200 OK13 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd94a5360-2ddf-4088-a880-212e75db1287.jpeg
34.120.237.76200 OK7.6 kB
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1180e9be-6c31-4bd3-86f4-ac36cdd4e746.jpeg
34.120.237.76200 OK9.3 kB
yidbyhersle.xyz/
52.20.131.174200 OK0 B
yidbyhersle.xyz/
52.20.131.174200 OK0 B
yidbyhersle.xyz/
52.20.131.174200 OK0 B
pogothere.xyz/asd100.bin
172.64.198.35200 OK0 B
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
31.13.72.36200 OK0 B
accounts.google.com/v3/signin/identifier?dsh=S-1123684057%3A1673402557334546&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh5A2u6SEFIFe8sxGbZuCWpnNxap6SXNM7pcazJeo8jmV2nZoSzF9eRyXxl3csR9hEq5cMh6qw
142.250.74.109403 Forbidden0 B
pogothere.xyz/
172.64.198.35200 OK0 B